From owner-freebsd-gnome@FreeBSD.ORG  Fri Oct 17 13:32:38 2008
Return-Path: <owner-freebsd-gnome@FreeBSD.ORG>
Delivered-To: gnome@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 236191065687
	for <gnome@FreeBSD.org>; Fri, 17 Oct 2008 13:32:38 +0000 (UTC)
	(envelope-from str@trantor.komkon.org)
Received: from trantor.komkon.org (trantor.komkon.org [65.217.243.220])
	by mx1.freebsd.org (Postfix) with ESMTP id DC03B8FC15
	for <gnome@FreeBSD.org>; Fri, 17 Oct 2008 13:32:37 +0000 (UTC)
	(envelope-from str@trantor.komkon.org)
Received: from trantor.komkon.org (str@localhost.komkon.org [127.0.0.1])
	by trantor.komkon.org (8.14.3/8.13.3) with ESMTP id m9HDHgdR072049
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT);
	Fri, 17 Oct 2008 09:17:42 -0400 (EDT)
	(envelope-from str@trantor.komkon.org)
Received: (from str@localhost)
	by trantor.komkon.org (8.14.3/8.13.3/Submit) id m9HDHgjb072048;
	Fri, 17 Oct 2008 09:17:42 -0400 (EDT) (envelope-from str)
Date: Fri, 17 Oct 2008 09:17:42 -0400 (EDT)
From: Igor Roshchin <str@komkon.org>
Message-Id: <200810171317.m9HDHgjb072048@trantor.komkon.org>
To: gnome@FreeBSD.org
X-Spam-Status: No, score=-3.6 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00
	autolearn=ham version=3.2.5
X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on trantor.komkon.org
X-Virus-Scanned: ClamAV 0.93.3/8439/Fri Oct 17 08:25:04 2008 on
	trantor.komkon.org
X-Virus-Status: Clean
Cc: 
Subject: libxml2 - will it be updated? (security vulnerability)
X-BeenThere: freebsd-gnome@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: GNOME for FreeBSD -- porting and maintaining
	<freebsd-gnome.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-gnome>,
	<mailto:freebsd-gnome-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-gnome>
List-Post: <mailto:freebsd-gnome@freebsd.org>
List-Help: <mailto:freebsd-gnome-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-gnome>,
	<mailto:freebsd-gnome-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 17 Oct 2008 13:32:38 -0000


Hello!

libxml2 which is used by various applications outside of Gnome itself
is reported to have known security vulnerabilities.
I just looked at libxml2 website and I see that FreeBSD ports are
several versions (and about half a year) behind the source.
(the version 2.7 which presumably fixed the problem was released on Aug.
30, while FreeBSD port is stuck at 2.6.32: Apr 8 2008)

I do not mean to blaim anybody (I know that there was a port freeze
recently), - I am just trying to alert people in
charge for this port, in case it slipped through the cracks.

Best regards,

Igor

Igor Roshchin
KomKon Sites